Information Technology Reference
In-Depth Information
A Synthetic Reverse Model Based on AIS and the
Application
Chang-You Zhang 1,2 , Wen-Qing Li 2 , Yuan-Da Cao 2 , and Zeng-Lu Fan 3
1 School of Computer & Information Engineering, Shijiazhuang Railway Institute,
Shijiazhuang, Hebei, 050043, P.R. China
2 School of Computer Science & Technology, Beijing Institute of Technology,
Beijing, 100081, P.R. China
3 Hebei Meteorology Bureau, Shijiazhuang, Hebei, 050043, P.R. China
zhangchangyou@tsinghua.org.cn, {liwq,caoyd}@bit.edu.cn,
zl_fan@yahoo.com.cn
Abstract. Artificial Immune System (AIS) is a set of principles and algorithm
following the properties of nature immune system. In order to improve the per-
formance of IDS, a synthetic dimension reduction model is proposed in this paper.
First of all, we define a similarity distance algorithm between two vectors based
on analogy reasoning. Then, we introduce an optimization method to meliorate
the normal-behavior-set and abnormal-behavior-set based on AIS and Genetic
Algorithm (GA). And then, we construct a synthetic reverse model taking both of
the above mentioned behaviour set. When a new behavior sample is sniffered
from network, the distances between this behavior and each of the two meliorated
sets are calculated. Finally, we treat these two distances as ordinate and abscissa,
the new behavior sample is mapped from a multi-dimensional vector space into a
point in a two-dimensional coordinate plane. According to the position of this
point, we determine whether a behavior is an intrusion or not.
Keywords: Synthetic Reverse Model, Artificial Immune System, IDS.
1 Introduction
Biology system is a fountain where people continually abstract inspirations. Artificial
Immune System (AIS) is one of these main inspirations. The mathematic framework
of the immunity network was raised by Jerne [1] in 1970s. In 1986, Farmer constructed
a dynamic model for immune system based on the mathematic framework of the im-
munity network. The following researchers raised some new theories from different
viewpoints of the biology immune system to perfect the AIS model, algorithms and
applications. The AIS shows its powerful abilities in information processing and
problem resolving in many fields, especially in information security, pattern recogni-
tion, intelligent optimization, machine learning, data mining, robotics, diagnostics and
cybernetics etc [2] .
Intrusion Detection System (IDS) is a very popular security defense. The aim of
AIS is to monitor, detect and identify a baleful or attempted behavior to network and
computer system by means of collecting and analyzing the system information. Thus,
 
Search WWH ::




Custom Search